curl is vulnerable to denial of service. An out bounds read in code handling HTTP/2 trailers can potentially lead to a denial-of-service situation or an information disclosure.

References

www.securitytracker.com/id/1040273

access.redhat.com/errata/RHSA-2019:1543

curl.haxx.se/docs/adv_2018-824a.html

github.com/curl/curl/pull/2231

usn.ubuntu.com/3554-1/

www.debian.org/security/2018/dsa-4098

nvd 1

ubuntucve 1

debiancve 1

cvelist 1

prion 1

osv 1

alpinelinux 1

cve 1

redhatcve 1

amazon 2

openvas 8

ibm 3

fedora 4

nessus 8

archlinux 6

slackware 1

debian 1

ubuntu 1

mageia 1

cloudfoundry 1

altlinux 1

gentoo 1

redhat 1

nvd

CVE-2018-1000005

2018-01-24 22:29:00

ubuntucve

CVE-2018-1000005

2018-01-24 00:00:00

debiancve

CVE-2018-1000005

2018-01-24 22:29:00

cvelist

CVE-2018-1000005

2018-01-24 22:00:00

prion

Out-of-bounds

2018-01-24 22:29:00

osv

CVE-2018-1000005

2018-01-24 22:29:00

alpinelinux

CVE-2018-1000005

2018-01-24 22:29:00

cve

CVE-2018-1000005

2018-01-24 22:29:00

redhatcve

CVE-2018-1000005

2019-10-07 17:06:45

amazon

Important: curl

2018-02-07 18:08:00

Important: curl

2018-02-20 20:57:00

openvas

Fedora Update for curl FEDORA-2018-241a5a2409

2018-01-31 00:00:00

Mageia: Security Advisory (MGASA-2018-0110)

2022-01-28 00:00:00

Debian: Security Advisory (DSA-4098-1)

2018-01-25 00:00:00

ibm

Security Bulletin: Vulnerabilities in cURL/libcURL affect IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru

2018-09-12 23:20:39

Security Bulletin: Vulnerabilities in cURL component shipped with IBM Rational ClearCase (CVE-2018-1000005, CVE-2018-1000007)

2018-07-10 08:34:12

Security Bulletin: Vulnerabilities in cURL affect QLogic Virtual Fabric Extension Module for IBM BladeCenter

2023-04-10 21:40:46

fedora

[SECURITY] Fedora 27 Update: curl-7.55.1-9.fc27

2018-01-30 18:12:27

[SECURITY] Fedora 26 Update: curl-7.53.1-14.fc26

2018-01-30 17:34:43

[SECURITY] Fedora 27 Update: curl-7.55.1-11.fc27

2018-05-23 16:00:01

nessus

Debian DSA-4098-1 : curl - security update

2018-01-29 00:00:00

Fedora 26 : curl (2018-85655b12b6)

2018-01-31 00:00:00

Fedora 27 : curl (2018-241a5a2409)

2018-01-31 00:00:00

archlinux

[ASA-201801-24] libcurl-gnutls: multiple issues

2018-01-29 00:00:00

[ASA-201801-25] lib32-libcurl-gnutls: multiple issues

2018-01-29 00:00:00

[ASA-201801-20] curl: multiple issues

2018-01-28 00:00:00

slackware

[slackware-security] curl

2018-01-25 02:28:38

debian

[SECURITY] [DSA 4098-1] curl security update

2018-01-26 09:59:00

ubuntu

curl vulnerabilities

2018-01-31 00:00:00

mageia

Updated curl packages fix security vulnerability

2018-02-06 09:25:44

cloudfoundry

USN-3554-1: curl vulnerabilities | Cloud Foundry

2018-03-01 00:00:00

altlinux

Security fix for the ALT Linux 8 package curl version 7.58.0-alt1

2018-01-24 00:00:00

gentoo

cURL: Multiple vulnerabilities

2018-04-08 00:00:00

redhat

(RHSA-2019:1543) Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 SP2 security update

2019-06-18 19:07:29

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.007

Percentile

79.6%

JSON

Related for VERACODE:25288